General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Ensuring a Safe and Secure Community: How You Can Help

 

Dear LIVEcommunity Members,

 

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

safe-community_oct24.jpg
report-content.jpg
jforsythe by Community Team Member
  • 468 Views
  • 0 replies
  • 2 Likes

FIPS mode algorithm decryption?

The FIPS Mode notes state:

"Non-FIPS approved algorithms are not decrypted and are thus ignored during decryption"

Can someone clearify what exactly this applies to, and what is not decrypted?

KatanaNZ by L3 Networker
  • 3479 Views
  • 4 replies
  • 0 Likes

Can't authenticate users in nested groups (AD, Radius)

Hi All,

I have a rule to allow access to Facebook.  The rule works if I list individual users, but not groups.

We have a single forest with 2 child domains.

Universal Group "FB Allowed"  has the following groups as members: "OU1 FB Allowed" and "OU2 FB

...

kill hung jobs?

Hi all,

How do I kill a job that has hung, such as a content download, that stops all other downloads from being able to run?

KatanaNZ by L3 Networker
  • 7792 Views
  • 2 replies
  • 0 Likes

Resolved! Hosting Websites - Google "Crawling" issues...

I haven't found the cause just yet, but I've noticed that since implementing our PAN firewalls, (PA-2020) I've noticed in our Google Webmaster tools that Google has stopped indexing our websites.  This is causing me big grief as you could imagine. No

...

cenders by L3 Networker
  • 3149 Views
  • 2 replies
  • 0 Likes

LDAP Schema Attribute as User Report filter?

Hi All,

I have a curly one, that a site has tried multiple solutions from HP, solarwinds, checkpoint, juniper etc etc to solve, and its all based around executive level reporting.

They have one large OU, with all users in it, two main classes, and then

...

KatanaNZ by L3 Networker
  • 1873 Views
  • 2 replies
  • 0 Likes

MAC Destination Problem (4.0.4)

We have a new pair of PA-2050 (HA).

The last two weeks works fine with 4.0.1 but last Thursday I upgraded them to 4.0.4 and two of our networks had problems to go trought the firewalls.

I saw in the traffic monitor that the rules were ok and that traff

...

pan agent

Hello Guys,

sorry to bother you.

have a question, for Pan agent to identify  users traffic. does it use only the management

port ? ? ?

regards,

bp

nettobe by L1 Bithead
  • 2350 Views
  • 3 replies
  • 0 Likes

Resolved! Temperature setting

Does anyone know what the high temperature alert setting is on a PA-500?  Are the alerts user configurable?

Mike

Activate Zone Protection with default values

Hello,

How safe is to activate Zone Protection with default values in terms of having problems with blocking normal traffic afterwards?

Is there a way to measure from Palo Alto (3.1.7) the total incoming packets/sec to our network in order to be able

...

If I enabled AV, PA's speed was degradation.

Hello all.

I’d like to know about AV of PA relate to inspection ability and speed degradation.

I had a test with Anti-Virus/Spyware signature.

When I send a zip compression file throughout PAN(4.0.3), PA’s speed was degradation but if I send a RAR th

...

willstech by L3 Networker
  • 2229 Views
  • 2 replies
  • 0 Likes

QoS profile Class names

Hi All,

Can the class names ( 1-8 ), be changed, to names instead of numbers?

Primarily I'm interested in this for the real time vies via QoS statistics, so its easier to see in the graph, what colours and names

are actually for what application groups

...

KatanaNZ by L3 Networker
  • 1619 Views
  • 1 replies
  • 0 Likes

Resolved! no-decrypt list?

I am looking for a list of sites that are known not to work with SSL decryption but have been unable to find anything.  I would like to see a KB article published or a do-decrypt forum so users can post what they find.

Citrix published IP addresses f

...

ksupport by L0 Member
  • 2677 Views
  • 1 replies
  • 0 Likes
  • 23704 Posts
  • 110 Subscriptions
Labels